Loading...

Virgin Media in wifi hacking warning - is your internet at risk?

Virgin Media is advising more than 800,000 customers with a specific router to change their password immediately after an investigation found hackers could gain access and steal their personal details.

Consumer group Which? found default passwords were just eight characters long and consisted of lowercase letters from an A-Z alphabet with just two letters removed, making them vulnerable to hackers. 

The discovery was made following a Which? investigation into smart home devices which found that hackers could access home networks and connected appliances in as little as four days.

Ethical security researchers SureCloud gained access to a Virgin  Super Hub 2 router , although Virgin Media said the issue also existed with other routers of the same age.
A Virgin Media spokesman said: "The security of our network and of our customers is of paramount importance to us.

"We continually upgrade our systems and equipment to ensure that we meet all current industry standards.

"To the extent that technology allows this to be done, we regularly support our customers through advice and updates and offer them the chance to upgrade to a Hub 3.0 which contains additional security provisions."

The Which? study tested whether popular smart gadgets and appliances, including wireless cameras, a smart padlock and a children's Bluetooth toy, could stand up to a possible hack.

Some of the devices proved harder than others to infiltrate, such as the Amazon Echo, but eight out of 15 appliances were found to have at least one security flaw.

The test found that the Fredi Megapix home CCTV camera system operated over the internet using a default administrator account without a password, and Which? found thousands of similar cameras available for anyone to watch the live feed over the internet.

The watchdog said that "worse still" a hacker could even pan and tilt the cameras to monitor activity in the house.

SureCloud hacked the CloudPets stuffed toy, which allows family and friends to send messages to a child via Bluetooth and made it play its own voice messages.

Which? said it contacted the manufacturers of eight affected products to alert them to flaws as part of the investigation, with the majority updating their software and security.

It did not receive a response from the manufacturers of either Fredi Megapix or CloudPets.

The consumer group said the industry needed to take the security of internet-enabled and smart products seriously by addressing the basics such as ensuring devices required a unique password before use, using two-factor authentication, and issuing regular security updates for software.
 
Alex Neill, Which? managing director of home products and services, said: "There is no denying the huge benefits that smart-home gadgets and devices bring to our daily lives.

"However, as our investigation clearly shows, consumers should be aware that some of these appliances are vulnerable and offer little or no security.

"There are a number of steps people can take to better protect their home, but hackers are growing increasingly more sophisticated.

"Manufacturers need to ensure that any smart product sold is secure by design."

Our Methodology

Anyone can claim they do wireless site surveys, including those that walk around using free utilities that check for basic signal strength, without any training or understanding of how wireless works. That may be fine if you only need basic Internet connectivity, but if your network supports mission-critical applications, you need a professional-grade solution.

Our methodologies are what differentiate us from our competition. We start with the belief that combining the best tools and training with years of experience leads to the best wireless solutions available. Our formula for success includes the following:


Expert Certified Personnel

We start with a commitment to having the best trained personnel possible. We only employ or contract with Certified Wireless Network Professionals (CWNP).

We are proud to be a member of the prestigious CWNE roundtable, an exclusive committee of wireless experts dedicated to developing the highest level and most respect vendor-neutral certification in the wireless industry, as well as writing technical whitepapers.

More...


Predictive Modeling

Predictive models, also known as virtual site surveys allow us to efficiently and accurately identify the number of access points required, as well as their initial placement and configuration. Modeling is ideal for creating "what if" scenarios that show us the effects of changes in real time. Our designs always start with a model which we then validate.

More...


RF Spectrum Analysis

Because wireless networks operate in unlicensed frequencies, potential interference from numerous devices such as microwaves, cordless phones, Bluetooth devices, video cameras, etc. can have a significant negative impact. RF spectrum analyzers are the only devices that can identify physical-layer interference, and no onsite wireless site survey is complete without this service.

More...


Onsite Site Surveys / Validation

When the highest degree of accuracy is required for your mission-critical applications, there is no substitute for a professional-grade manual site survey.

Our surveys start with temporarily mounting the same access points and antennas that will be permanently installed. We then use professional-grade software to test not only for signal strength, but Signal-to-Noise ratio (SNR) to test the signal's viability, interference and data rates. Our thorough approach is the most accurate solution available.

More...


Detailed Deliverables

Our reports spell out the facts, and leave no doubt in the customer's mind as to what the wireless network does or will look like.

More...